CVE-2019-14565
HIGHIntel(R) SGX SDK <2.4.100.51291 & <2.6.100.51363 - Privilege Escala...
Title source: llmDescription
Insufficient initialization in Intel(R) SGX SDK Windows versions 2.4.100.51291 and earlier, and Linux versions 2.6.100.51363 and earlier, may allow an authenticated user to enable information disclosure, escalation of privilege or denial of service via local access.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00293.html
Vendor Advisory x_refsource_confirm
https://support.f5.com/csp/article/K57201259?utm_source=f5support&%3Butm_medium=RSS
Scores
CVSS v3
7.8
EPSS
0.0036
EPSS Percentile
27.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-665
Status
published
Products (8)
intel/software_guard_extensions_sdk
2.3.100.49777
intel/software_guard_extensions_sdk
2.3.101.50222
intel/software_guard_extensions_sdk
2.4.100.51291
intel/software_guard_extensions_sdk
2.2.100.45311
intel/software_guard_extensions_sdk
2.3.100.46354
intel/software_guard_extensions_sdk
2.4.100.48163
intel/software_guard_extensions_sdk
2.5.100.49891
intel/software_guard_extensions_sdk
2.6.100.51363
Published
Nov 14, 2019
Tracked Since
Feb 18, 2026